MYSQL8 and InnoDB Cluster

Category : security

Some time ago, we decided to run KeyChest on a database cluster. Once we actually did it, I started doubting wisdom of this decision and it took a few months to get beyond the stability of a single-node MySQL database.

“Read More”

KeyChest at Pitchfest 2019

Category : security

KeyChest and another 19 of the Brightest Stars of UK Cyber Innovation will compete for the title of the UK’s Most Innovative Small Cyber Security Company and one of 14 exhibition stands at the DCMS Innovation Zone at Infosecurity Europe.

“Read More”

KeyChest supports free web encryption

Category : https , keychest , letsencrypt , security

A new version of KeyChest for 2019 with Free personal end-to-end monitoring of up to 500 servers. Most preparations went up in smoke but we made it.

“Read More”

Certbot and KeyChest API

Category : https , keychest , security

KeyChest is being integrated with Let’s Encrypt more tightly, it now has its first integration hook for Certbot. It registers domains using self-registered API keys and creates dormant accounts for you simply to confirm.

“Read More”

How Big is Let’s Encrypt

Category : security

I have looked into this some time ago, when I researched the global market of web encryption. I used market research reports and arrived to the number of 80%. This time, I had a look at the data from KeyChest monitoring.

“Read More”

Safe Web Security – can it crowdfund?

Tags :

Category : security

I wanted to try it for a while – a crowdfunding campaign. The most important challenge for me was to write a story that would be easy to understand and sufficiently interesting for people investing in crowd funding projects.

“Read More”

Intruder – Automated Pen Testing for SMEs

I met Chris Wallis last week for a cuppa and to talk shop as we both have been doing start-ups for a while. He’s ahead of me and it’s incredible he pulled it off.

“Read More”

Dash cashless – design and operation (HTTPS)

Category : https , security

I recently attended a workshop about app/web product design. The presenter asked us to think of a well and badly designed app. Dash sprang to my mind as an example of the latter. While its design is an ongoing issue, it happened at least once that its server certificate expired and users couldn’t do payments.

“Read More”

KeyChest – Getting Rid of Broken Padlocks

We all have seen it – I go to visit an interesting blog, DEFCON website, or pay for your parking on the go. But I can’t – the website or web service has an expired certificate and the “damn security wouldn’t let me do it”.

“Read More”

Estonia Hits Gemalto Again – Insecure eID cards

Category : security

When we researched impacts of the ROCA vulnerability, the Estonian government limited the impact with a cut-off date. ROCA only applied after that date. It now appears that Gemalto had another problem before that cut-off date.

“Read More”